GLSA-200705-10 : LibXfont, TightVNC: Multiple vulnerabilities

The remote Gentoo host is missing one or more security-related
patches.

Description :

The remote host is affected by the vulnerability described in GLSA-200705-10
(LibXfont, TightVNC: Multiple vulnerabilities)

The libXfont code is prone to several integer overflows, in functions
ProcXCMiscGetXIDList(), bdfReadCharacters() and FontFileInitTable().
TightVNC contains a local copy of this code and is also affected.

Impact :

A local attacker could use a specially crafted BDF Font to gain root
privileges on the vulnerable host.

Training & Certification

The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.